CVE-2011-3551Integer Overflow or Wraparound in Oracle Jrockit

CWE-190Integer Overflow or Wraparound6 documents6 sources
Severity
9.3CRITICALNVD
EPSS
6.0%
top 9.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Oracle JrockitSUN JDKSUN JRE
Timeline
PublishedOct 19
Latest updateMay 14

Description

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

NVDoracle/jrockitr28.1.4+6
NVDsun/jdk1.6.0+2
NVDsun/jre1.6.0+2

🔴Vulnerability Details

2
GHSA
GHSA-hf9g-qf2v-h32m: Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R282022-05-14
CVEList
CVE-2011-3551: Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JRockit R282011-10-19

📋Vendor Advisories

2
Ubuntu
IcedTea-Web, OpenJDK 6 vulnerabilities2011-11-16
Red Hat
OpenJDK: Java2D TransformHelper integer overflow (2D, 7023640)2011-10-18

💬Community

1
Bugzilla
CVE-2011-3551 OpenJDK: Java2D TransformHelper integer overflow (2D, 7023640)2011-10-12
CVE-2011-3551 — Integer Overflow or Wraparound | cvebase